Site2Site VPN with ubiquiti and Cisco router

One of my customer asked me to do a site2site VPN with his home ubiquiti router. I said “Yeah sure, we can try…” and it wasn’t very hard to accomplish this. Site2site IPsec VPN with dynamic peers to a Cisco router and parralel EasyVPN Cisco VPN users is not possible! In this case, the company is using SSL VPN for the road warriors, so we had no problem here. First, I configured the Cisco router in the headquarter. The IP subnet at home is 192.168.200.0/24:

the Cisco router is now able to react on dynamic VPN peers. Keep in mind to “no-nat” VPN traffic, otherwhise you can’t reach the remote network.

After this I logged on into the ubiquiti interface and saw a very simple GUI 🙂 so I connected to the shell via SSH and found some commands for configuring hidden VPN parameters. After some tries, here’s my final config: